Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
SecurityvulnsRecent
RecentMost viewed

47153 matches found

securityvulns
securityvulns•added 2012/10/05 12:0 a.m.•44 views

[security bulletin] HPSBMU02813 SSRT100712 rev.1 - HP Operations Orchestration, Remote Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03490339 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03490339 Version: 1 HPSBMU02813...

10CVSS0.7AI score0.23626EPSS
Exploits0
securityvulns
securityvulns•added 2012/10/05 12:0 a.m.•26 views

HP IBRIX X9000 information leakage

No description provided...

5CVSS0.4AI score0.00689EPSS
Exploits0References1
securityvulns
securityvulns•added 2012/10/05 12:0 a.m.•37 views

RSA SecurID Authentication Agent / RSA Authentication Client protection bypass

Under some condition user may login with windows credentials only...

8.5CVSS5AI score0.00228EPSS
Exploits0References1Affected Software2
securityvulns
securityvulns•added 2012/10/05 12:0 a.m.•64 views

[security bulletin] HPSBMU02817 SSRT100950 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Disclosure of Information

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03507708 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03507708 Version: 1 HPSBMU02817...

5CVSS0.5AI score0.01493EPSS
Exploits0
securityvulns
securityvulns•added 2012/10/05 12:0 a.m.•96 views

[security bulletin] HPSBMU02815 SSRT100715 rev.3 - HP SiteScope SOAP Security Issues, Remote Disclosure of Information, Remote Code Execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03489683 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03489683 Version: 3 HPSBMU02815...

10CVSS0.5AI score0.68581EPSS
Exploits6
securityvulns
securityvulns•added 2012/10/05 12:0 a.m.•63 views

XnView JLS File Decompression Heap Overflow

XnView JLS File Decompression Heap Overflow Summary XnView Formats PlugIn is prone to an overflow condition. The JLS Plugin xjpegls.dll library fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted JLS compressed image file, a...

9.3CVSS0.2AI score0.34944EPSS
Exploits3
securityvulns
securityvulns•added 2012/10/05 12:0 a.m.•23 views

HP Operations Orchestration code execution

No description provided...

10CVSS1.3AI score0.23626EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2012/10/05 12:0 a.m.•93 views

[USN-1595-1] libxslt vulnerabilities

========================================================================== Ubuntu Security Notice USN-1595-1 October 04, 2012 libxslt vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.8CVSS1AI score0.01661EPSS
Exploits1
securityvulns
securityvulns•added 2012/10/05 12:0 a.m.•65 views

libxslt multiple security vulnerabilities

Information leakages, DoS conditions, memory corruptions...

6.8CVSS1.7AI score0.01661EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns•added 2012/10/05 12:0 a.m.•48 views

ESA-2012-037: RSA(r) Authentication Agent 7.1 for Microsoft Windows(r) and RSA(r) Authentication Client 3.5 Access Control Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2012-037: RSAÂŽ Authentication Agent 7.1 for Microsoft WindowsÂŽ and RSAÂŽ Authentication Client 3.5 Access Control Vulnerability EMC Identifier: ESA-2012-037 CVE Identifier: CVE-2012-2287 Severity Rating: CCVSS v2 Base Score: 6.5...

8.5CVSS0.4AI score0.00228EPSS
Exploits0
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•61 views

[USN-1576-1] DBus vulnerability

========================================================================== Ubuntu Security Notice USN-1576-1 September 20, 2012 dbus vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.9CVSS5.4AI score0.30837EPSS
Exploits4
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•47 views

CA20121001-01: Security Notice for CA License

CA20121001-01: Security Notice for CA License Issued: October 01, 2012 CA Technologies Support is alerting customers to two potential risks in CA License also known as CA Licensing. Vulnerabilities exist that can allow a local attacker to execute arbitrary commands or gain elevated access. CA...

7.2CVSS0.3AI score0.00058EPSS
Exploits0
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•77 views

[USN-1582-1] RubyGems vulnerabilities

========================================================================== Ubuntu Security Notice USN-1582-1 September 26, 2012 rubygems vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives...

5.8CVSS0.5AI score0.00638EPSS
Exploits0
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•26 views

DartWebserver buffer overflow

Buffer overflow on HTTP request parsing...

5CVSS2.4AI score0.07592EPSS
Exploits5References1Affected Software1
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•42 views

RubyGems https vulnerabilities

Insufficient certificate validation, redirection to insecure protocols...

5.8CVSS1.4AI score0.00638EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•154 views

CVE-2012-4415: guacamole local root vulnerability

Overview ======== "Guacamole is an HTML5 web application that provides access to desktop environments using remote desktop protocols such as VNC or RDP. A centralized server acts as a tunnel and proxy, allowing access to multiple desktops through a web browser. No plugins are needed: the client...

7.5CVSS2.2AI score0.3445EPSS
Exploits5
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•58 views

[ MDVSA-2012:156 ] inn

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:156 http://www.mandriva.com/security/ Package : inn Date : October 2, 2012 Affected: 2011. Problem Description: A security issue was identified and fixed in ISC INN: The STARTTLS implementation in INNs NNTP...

6.8CVSS8.8AI score0.32222EPSS
Exploits1
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•55 views

Apple TV multiple security vulnerabilities

Multiple vulnerabilities on different formats and protocols parsing...

9.3CVSS2.9AI score0.43166EPSS
Exploits4References1Affected Software1
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•36 views

QEMU memory corruption

Memory corruption on terminal emulation...

7.2CVSS1.9AI score0.001EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•52 views

STARTTLS vulnerability in different mail applications

Atacker can inject cleartext commands before TLS phase...

6.8CVSS2.7AI score0.32222EPSS
Exploits1References3Affected Software4
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•64 views

[USN-1590-1] QEMU vulnerability

========================================================================== Ubuntu Security Notice USN-1590-1 October 02, 2012 qemu-kvm vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

7.2CVSS0.3AI score0.001EPSS
Exploits0
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•39 views

guacamole buffer overflow

Buffer overflow on request parsing...

7.5CVSS5.1AI score0.3445EPSS
Exploits5References1Affected Software1
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•54 views

CVE-2012-3819: Stack Overflow in DartWebserver.dll <= 1.9

Overview =============== DartWebserver.Dll is an HTTP server provided by Dart Comunications dart.com. It is distributed intheir PowerTCP/Webserver For ActiveX product and likely other similar products. "Build web applications in any familiar software development environment. Use WebServer for...

0.1AI score0.07592EPSS
Exploits5
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•38 views

Toshiba ConfigFree CF7 File Stack Buffer Overflow (ProfileName)

/-------------------------------------------------------------------------------- | Toshiba ConfigFree CF7 File Stack Buffer Overflow ProfileName | --------------------------------------------------------------------------------/ Summary ======= There is a stack buffer overflow vulnerability in t...

8AI score0.00971EPSS
Exploits0
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•64 views

DDIVRT-2012-42 Novell GroupWise Agents Arbitrary File Retrieval (CVE-2012-0419)

Title ----- DDIVRT-2012-42 Novell GroupWise Agents Arbitrary File Retrieval CVE-2012-0419 Severity -------- High Date Discovered --------------- April 2, 2012 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: r@b13$ Vulnerability Description...

5CVSS6.5AI score0.75143EPSS
Exploits4
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•39 views

dbus privilege escalation

Privilege escalation via environment variables...

6.9CVSS3.7AI score0.30837EPSS
Exploits4References1Affected Software1
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•45 views

Tochiba ConfigFree multiple security vulnerabilities

Multiple vulnerabilities on CF7 files parsing...

3AI score0.05741EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•41 views

Novell Groupwise directory traversal

HTTP interface directory traversal...

5CVSS1.5AI score0.75143EPSS
Exploits4References1Affected Software1
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•56 views

Toshiba ConfigFree CF7 File Stack Buffer Overflow (Comment Field

/----------------------------------------------------------------------------------- | Toshiba ConfigFree CF7 File Stack Buffer Overflow Comment Field | -----------------------------------------------------------------------------------/ Summary ======= There is a stack buffer overflow...

0.1AI score0.00971EPSS
Exploits0
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•21 views

CA License privilege escalation

Code execution with system rights, files modification...

7.2CVSS3.3AI score0.00058EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•44 views

Toshiba ConfigFree CF7 File Remote Command Execution

/----------------------------------------------------------------------------- | Toshiba ConfigFree CF7 File Remote Command Execution | -----------------------------------------------------------------------------/ Summary ======= There is a command execution vulnerability in the Toshiba ConfigFr...

0.1AI score0.05741EPSS
Exploits0
securityvulns
securityvulns•added 2012/10/04 12:0 a.m.•98 views

APPLE-SA-2012-09-24-1 Apple TV 5.1

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2012-09-24-1 Apple TV 5.1 Apple TV 5.1 is now available and addresses the following: Apple TV Available for: Apple TV 2nd generation and later Impact: Viewing a maliciously crafted movie file may lead to an unexpected application termination ...

9.3CVSS0.6AI score0.43166EPSS
Exploits4
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•66 views

Wordpress Download Monitor - Download Page Cross-Site Scripting

/----------------------------------------------------------------- | Wordpress Download Monitor - Download Page Cross-Site Scripting | -----------------------------------------------------------------/ Summary ======= Wordpress Download Monitor 3.3.5.7 is subject to a cross-site scripting...

4.3CVSS5.6AI score0.01936EPSS
Exploits2
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•26 views

Smartfren Connex EC 1261-2 UI OUC Local Privilege Escalation Vulnerability

========================================================================== Smartfren Connex EC 1261-2 UI OUC Local Privilege Escalation Vulnerability ==========================================================================...

6.9AI score
Exploits0
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•20 views

xinitd restrictions bypass

tcpmux invalid service type check...

4.3CVSS2.2AI score0.00535EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•99 views

[ MDVSA-2012:154 ] apache

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:154 http://www.mandriva.com/security/ Package : apache Date : September 28, 2012 Affected: Enterprise Server 5.0 Problem Description: Multiple vulnerabilities has been found and corrected in apache ASF HTTPD...

6.9CVSS8.4AI score0.0466EPSS
Exploits5
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•39 views

Joomla 2.5.6 Multiple Cross-site scripting vulnerabilities

Advisory: Joomla 2.5.6 Multiple Cross-site scripting vulnerabilities Advisory ID: SSCHADV2012-014 Author: Stefan Schurtz Affected Software: Successfully tested on Joomla 2.5.6 Vendor URL: http://www.joomla.org/ Vendor Status: fixed ========================== Vulnerability Description...

6AI score
Exploits0
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•40 views

CVE-2012-0862

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:155 http://www.mandriva.com/security/ Package : xinetd Date : September 28, 2012 Affected: Enterprise Server 5.0 Problem Description: A security issue was identified and fixed in xinetd: builtins.c in Xinetd...

4.3CVSS6.2AI score0.00535EPSS
Exploits1
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•34 views

Cisco Unified Communications Manager DoS

Crash on SIP parsing...

7.8CVSS2AI score0.00932EPSS
Exploits0Affected Software1
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•68 views

Apple Mac OS X multiple security vulnerabilities

Multiple vulnerabilities in different subsystems...

9.3CVSS1.7AI score0.43166EPSS
Exploits4References2Affected Software1
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•18 views

Smartfren Connex weak permissions

Weak permissions for executable files lead to privilege escalation...

3.5AI score
Exploits0References1
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•30 views

Cisco Catalyst switches DoS

Crash on malformed packet parsing...

7.1CVSS2.9AI score0.00662EPSS
Exploits0
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•103 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

4.3CVSS1.6AI score0.06071EPSS
Exploits9References10Affected Software6
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•63 views

Microcart 1.0 _Admin Cross-Site Scripting Security Vulnerability

/----------------------------------------------------------------- | Microcart 1.0 Admin Cross-Site Scripting Security Vulnerability | -----------------------------------------------------------------/ Summary ======= Microcart 1.0 is subject to a cross-site scripting vulnerability. A generic...

4.3CVSS5.9AI score0.00496EPSS
Exploits4
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•39 views

NGS00254 Patch Notification: Apple Mac OS X Lion USB Hub Class Hub Descriptor Arbitrary Code Execution

High Risk Vulnerability in Apple Mac OS X Lion 27 September 2012 Andy Davis of NCC Group has discovered a High risk vulnerability in Apple OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4. Impact: Arbitrary Code Execution bug triggered by USB device insertion Versions affected: Mac O...

Exploits0
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•64 views

Apache security vulnerabilities

modnegotiation crossite scripting, local shared library privilege escalation...

6.9CVSS2.3AI score0.0466EPSS
Exploits5References1Affected Software1
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•73 views

Microcart 1.0 Checkout Cross-Site Scripting Security Vulnerability

/------------------------------------------------------------------- | Microcart 1.0 Checkout Cross-Site Scripting Security Vulnerability | -------------------------------------------------------------------/ Summary ======= Microcart 1.0 is subject to several cross-site scripting vulnerabilities...

4.3CVSS6.1AI score0.00496EPSS
Exploits4
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•50 views

Cisco IOS multiple security vulnerabilities

Multiple DoS conditions in different protocols implementations...

7.8CVSS2.3AI score0.00932EPSS
Exploits1Affected Software2
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•31 views

Transmission crossite scripting

Transmission web client crossite scripting...

2.6CVSS1.4AI score0.00545EPSS
Exploits2References1
securityvulns
securityvulns•added 2012/10/01 12:0 a.m.•68 views

MF Gig Calendar Wordpress Plugin - Cross-Site Scripting

/--------------------------------------------------------- | MF Gig Calendar Wordpress Plugin - Cross-Site Scripting | ---------------------------------------------------------/ Summary ======= MF Gig Calendar 0.9.2 is subject to a cross-site scripting vulnerability. The value of a generic...

4.3CVSS5.6AI score0.06071EPSS
Exploits3
Total number of security vulnerabilities47153